×
AllBooksVideosShopping Images Maps News
Search tools

Remote Access API - Jenkins

www.jenkins.io › doc › book › using › r...
Note: API tokens are preferred instead of crumbs for CSRF protection. XPath selection. The XML API supports a selection by XPath by using the query parameter ' ...

Jenkins Security Advisory 2024-01-24

www.jenkins.io › security › advisory
Jan 24, 2024 · The "Resource Root URL" functionality is enabled (see documentation). ... Remote code execution via CSRF protection bypass ... Content-Security- ...
Missing: book/ | Show results with:book/

Access Control - Jenkins

www.jenkins.io › doc › book › security
Authentication (users prove who they are) is done using a security realm. The security realm determines user identity and group memberships.

Jenkins Security Advisory 2023-07-12

www.jenkins.io › security › advisory
Jul 12, 2023 · mabl Plugin 0.0.47 defines the appropriate context for credentials lookup. CSRF vulnerability and missing permission checks in mabl Plugin allow ...
Missing: book/ | Show results with:book/

Upgrading to Jenkins LTS 2.204.x

www.jenkins.io › doc › upgrade-guide
Responses to POST requests that do not set a CSRF crumb/token may in very rare cases change in unexpected ways due to the fix for SECURITY-1774.
Missing: book/ | Show results with:book/

Microsoft Entra ID (previously Azure AD) - Jenkins Plugins

plugins.jenkins.io › azure-ad
May 12, 2024 · Add a new Reply URL https://{your_jenkins_host}/ ... io/doc/book/security/access-control/disable/) ... CSRF protection for any URL can be bypassed.

Jenkins Security Advisory 2023-08-16

www.jenkins.io › security › advisory
Aug 16, 2023 · Descriptions. CSRF vulnerability in Folders Plugin may approve unsandboxed scripts. SECURITY-3106 / CVE-2023-40336. Severity (CVSS): High
Missing: book/ | Show results with:book/

Script Security - Jenkins Plugins

plugins.jenkins.io › script-security
Apr 16, 2024 · Administrators may approve those scripts using the Script Approval configuration page or following the approval link in the configuration. In ...

Jenkins Security Advisory 2022-09-21

www.jenkins.io › security › advisory
Sep 21, 2022 · CSRF vulnerability and missing permission check in NS-ND Integration Performance Publisher Plugin. SECURITY-2737 / CVE-2022-41227 (CSRF), CVE- ...
Missing: book/ | Show results with:book/

Jenkins Security

www.jenkins.io › security
Security advisories are the primary way to publicly inform Jenkins users about security issues in Jenkins and Jenkins plugins. You can find all past security ...
Missing: book/ protection/